Log4j stories

Orca Security warns that AI credentials, vulnerable dependencies and lax pipeline controls are leaving production environments exposed across US and Europe.

SonicWall says small firms are being hit hardest by basic security lapses as ransomware, bot traffic and identity theft keep climbing.

Cobalt weaves AI into its pentesting platform, automating recon and triage while keeping human experts on complex attack paths.

GitHub joins tech giants in a USD $12.5 million Alpha-Omega push, boosting AI-powered defences for critical open source software.

Secure.com warns most apps hide critical flaws in open source components, as unpatched dependencies and licence risks leave firms exposed.

Chainguard expands its rebuilt-from-source Libraries to Python, Java and JavaScript, targeting malware risks in AI-driven software supply chains.

Azul and Chainguard have teamed up to offer zero-CVE Java containers, enhancing security and support for enterprise Java workloads with Hardened, source-built images.

Azul's Intelligence Cloud now cuts Java security false positives by up to 99%, using runtime data to boost vulnerability detection accuracy for DevOps teams.

Azul has launched a Java vulnerability tool that cuts false positives by up to 99%, improving threat detection accuracy for production environments.

Less than 40% of firms fully see their software supply chains amid rising security threats and new EU and US cybersecurity regulations.

Fewer than 40% of organisations have full visibility into their software supply chains, exposing risks amid rising cybersecurity concerns and regulation.

NetRise launches ZeroLens, an AI tool that detects undisclosed software weaknesses in compiled code, aiming to prevent cyberattacks before vulnerabilities emerge.

A survey by Azul reveals that 88% of enterprises are exploring alternatives to Oracle Java, citing rising costs and cloud expense concerns as key factors.

Sonatype releases its SBOM Manager, a crucial tool to help organisations track and manage software components.

Cloudflare reveals a 25% surge in global internet traffic and heightened cybersecurity threats in its 2023 report.

The data highlights legacy vulnerability remediation challenges, which are the root cause of the majority of data breaches.

The quantity of cyber attacks targeting the Log4Shell complex of vulnerabilities in Log4j still remains extremely high, according to Barracuda Networks.